VulnerableCode Package Details - pkg:maven/org.apache.hadoop/hadoop-common@0.23.9

Search for packages

Package details: pkg:maven/org.apache.hadoop/hadoop-common@0.23.9

Essentials
History (1)

purl	pkg:maven/org.apache.hadoop/hadoop-common@0.23.9

Vulnerabilities affecting this package (0)

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerabilities fixed by this package (1)

Vulnerability	Summary	Aliases
VCID-hcjm-eeqb-m7f2	Improper Authentication in Apache Hadoop The RPC protocol implementation in Apache Hadoop 2.x before 2.0.6-alpha, 0.23.x before 0.23.9, and 1.x before 1.2.1, when the Kerberos security features are enabled, allows man-in-the-middle attackers to disable bidirectional authentication and obtain sensitive information by forcing a downgrade to simple authentication.	CVE-2013-2192 GHSA-pxv5-5vmp-3jj4

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-07-01T12:27:01.941244+00:00	GithubOSV Importer	Fixing	VCID-hcjm-eeqb-m7f2	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-pxv5-5vmp-3jj4/GHSA-pxv5-5vmp-3jj4.json	36.1.3